Hi Guys
Since I have implemented TLS on the postfix the logwatch reports are showing the complete certificate exchange process. I just want the report to show relay denied but not the TLS exchange.
I am seeing hundreds of messages like:
"
Read from 552AC47D30 [552AC5151B] (59 bytes => -1 (0xFFFFFFFFFFFFFFFF)) SSL_accept:error in SSLv3 read client hello B SSL_accept:error in SSLv3 read client hello B read from 552AC47D30 [552AC5151B] (59 bytes => 59 (0x3B)) 0000 48 46 9d 6d f7 43 3a 29|70 57 3e 32 ff 53 21 ab HF.m.C
pW>2.S!. 0010 0e 13 85 40 c8 ce 97 62|6c b6 4f a9 51 66 c2 a1 ...@...b l.O.Qf.. 0020 00 00 16 00 04 00 05 00|0a 00 09 00 64 00 62 00 ........ ....d.b.
0030 03 00 06 00 13 00 12 00|63 01 ........ c.
003a - <SPACES/NULLS>
SSL_accept:SSLv3 read client hello B
SSL_accept:SSLv3 write server hello A
SSL_accept:SSLv3 write certificate A
SSL_accept:SSLv3 write server done A
write to 552AC47D30 [552AC5F6D0] (1129 bytes => 1129 (0x469)) 0000 16 03 01 00 4a 02 00 00|46 03 01 48 46 9d 6d 6e ....J... F..HF.mn 0010 22 c2 14 3e 8f 27 1e 78|b0 d6 67 30 bf 59 b6 ff "..>.'.x ..g0.Y.. 0020 e5 ee 82 94 d7 cc ac 00|00 00 00 20 ef 01 2c 9f ........ ... ..,. 0030 2d af 5c 64 c7 c4 f2 a3|c5 e5 30 33 ee 0a 18 7c -.\d.... ..03...| 0040 1c 77 b3 86 18 79 3c f7|e7 64 a2 9c 00 04 00 16 .w...y<. .d...... 0050 03 01 04 0c 0b 00 04 08|00 04 05 00 04 02 30 82 ........ ......0. 0060 03 fe 30 82 03 67 a0 03|02 01 02 02 01 01 30 0d ..0..g.. ......0. 0070 06 09 2a 86 48 86 f7 0d|01 01 04 05 00 30 81 a8 ..*.H... .....0.. 0080 31 0b 30 09 06 03 55 04|06 13 02 47 42 31 0f 30 1.0...U. ...
...
...and
SSL_accept:SSLv3 flush data
initializing the server-side TLS engine
initializing the server-side TLS engine
initializing the server-side TLS engine
initializing the server-side TLS engine
initializing the server-side TLS engine
initializing the server-side TLS engine
initializing the server-side TLS engine
initializing the server-side TLS engine
initializing the server-side TLS engine
initializing the server-side TLS engine"
How do I get rid of this. I have tried altering the logwatch detail down to med and low but this does not impact.
I do not mind /var/log/maillog showing detail but would like to limit this also.
I would appreciate any help.
Regards